On 21 Dec 2011, at 19:08, Kingsley Idehen wrote:
> On 12/21/11 12:55 PM, Mo McRoberts wrote:
>> On 21 Dec 2011, at 17:47, Kingsley Idehen wrote:
>>
>>> I used to think so until Henry expressed questionable suggestions about URI handling that breaks the abstraction re. WebID verifiers.
>> Iâ€™m think it was actually Peter initially, but I could be wrong; Henry just revisited the issue, and took a safe (from a security perspective, if broken from a web arch angle) default position.
>>
>> Iâ€™m not sure why that prompted this whole thread. Just saying â€œredirection (and indirection!) are a fundamental part of web architecture, we just need to settle on how theyâ€™re handled from a security perspectiveâ€